Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-4204-1:1D5FF
HistoryMay 18, 2018 - 4:59 p.m.

[SECURITY] [DSA 4204-1] imagemagick security update

2018-05-1816:59:44
lists.debian.org
33

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

JSON

Debian Security Advisory DSA-4204-1 [email protected]
https://www.debian.org/security/ Sebastien Delafond
May 18, 2018 https://www.debian.org/security/faq

Package : imagemagick
CVE ID : CVE-2017-10995 CVE-2017-11533 CVE-2017-11535 CVE-2017-11639
CVE-2017-13143 CVE-2017-17504 CVE-2017-17879 CVE-2018-5248
Debian Bug : 867748 869827 869834 870012 870065 885125 885340 886588

This update fixes several vulnerabilities in imagemagick, a graphical
software suite. Various memory handling problems or issues about
incomplete input sanitizing would result in denial of service or
memory disclosure.

For the oldstable distribution (jessie), these problems have been fixed
in version 8:6.8.9.9-5+deb8u12.

We recommend that you upgrade your imagemagick packages.

For the detailed security status of imagemagick please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/imagemagick

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian9ppc64ellibmagickcore-6.q16-dev< 6.9.7.4+dfsg-11+deb9u5libmagickcore-6.q16-dev_6.9.7.4+dfsg-11+deb9u5_ppc64el.deb
Debian9mipsellibmagickcore-6.q16hdri-dev< 6.9.7.4+dfsg-11+deb9u5libmagickcore-6.q16hdri-dev_6.9.7.4+dfsg-11+deb9u5_mipsel.deb
Debian7allimagemagick-common< 6.7.7.10-5+deb7u19imagemagick-common_6.7.7.10-5+deb7u19_all.deb
Debian9mips64elimagemagick-6.q16< 6.9.7.4+dfsg-11+deb9u5imagemagick-6.q16_6.9.7.4+dfsg-11+deb9u5_mips64el.deb
Debian9mipselimagemagick-6.q16hdri< 6.9.7.4+dfsg-11+deb9u5imagemagick-6.q16hdri_6.9.7.4+dfsg-11+deb9u5_mipsel.deb
Debian9mipsellibimage-magick-q16-perl-dbgsym< 6.9.7.4+dfsg-11+deb9u5libimage-magick-q16-perl-dbgsym_6.9.7.4+dfsg-11+deb9u5_mipsel.deb
Debian9mipsellibmagickcore-6.q16-3< 6.9.7.4+dfsg-11+deb9u5libmagickcore-6.q16-3_6.9.7.4+dfsg-11+deb9u5_mipsel.deb
Debian9arm64libmagick++-6.q16hdri-7< 6.9.7.4+dfsg-11+deb9u2libmagick++-6.q16hdri-7_6.9.7.4+dfsg-11+deb9u2_arm64.deb
Debian8mipslibmagick++-6.q16-5< 6.8.9.9-5+deb8u12libmagick++-6.q16-5_6.8.9.9-5+deb8u12_mips.deb
Debian9armellibmagick++-6.q16hdri-dev< 6.9.7.4+dfsg-11+deb9u4libmagick++-6.q16hdri-dev_6.9.7.4+dfsg-11+deb9u4_armel.deb
Rows per page:
1-10 of 11841

Related

nessus 27
debian 6
openvas 47
osv 14
redhatcve 8
prion 8
ubuntucve 8
cve 8
veracode 7
debiancve 8
cloudfoundry 1
ubuntu 1
mageia 1
suse 3
fedora 25
gentoo 1
nessus
nessus
Debian DSA-4204-1 : imagemagick - security update
2018-05-21 00:00:00
Debian DLA-1227-1 : imagemagick security update
2018-01-02 00:00:00
Debian DSA-4074-1 : imagemagick - security update
2017-12-29 00:00:00
debian
debian
[SECURITY] [DSA 4204-1] imagemagick security update
2018-05-18 16:59:44
[SECURITY] [DLA 1227-1] imagemagick security update
2018-01-01 19:33:23
[SECURITY] [DSA 4074-1] imagemagick security update
2017-12-28 09:40:05
openvas
openvas
Debian: Security Advisory (DSA-4204-1)
2018-05-17 00:00:00
Debian: Security Advisory (DLA-1227-1)
2018-01-08 00:00:00
Debian: Security Advisory (DSA-4074-1)
2017-12-27 00:00:00
osv
osv
imagemagick - security update
2018-05-18 00:00:00
imagemagick - security update
2018-01-01 00:00:00
CVE-2017-11533
2017-07-23 03:29:00
redhatcve
redhatcve
CVE-2017-11535
2017-07-25 16:19:44
CVE-2017-17879
2017-12-26 21:21:10
CVE-2017-11533
2017-07-25 16:20:27
prion
prion
Heap overflow
2017-12-27 17:08:00
Heap overflow
2017-07-23 03:29:00
Heap overflow
2017-07-23 03:29:00
ubuntucve
ubuntucve
CVE-2017-17879
2017-12-27 00:00:00
CVE-2017-11533
2017-07-22 00:00:00
CVE-2017-17504
2017-12-10 00:00:00
cve
cve
CVE-2017-11535
2017-07-23 03:29:00
CVE-2017-17879
2017-12-27 17:08:00
CVE-2017-17504
2017-12-11 02:29:00
veracode
veracode
Heap-based Buffer Over-read
2017-12-11 07:40:21
Denial Of Service (DoS)
2017-12-27 23:34:30
Heap-based Buffer Over-read
2017-07-24 00:13:00
debiancve
debiancve
CVE-2017-17879
2017-12-27 17:08:00
CVE-2017-11533
2017-07-23 03:29:00
CVE-2017-11535
2017-07-23 03:29:00
cloudfoundry
cloudfoundry
USN-3681-1: ImageMagick vulnerabilities | Cloud Foundry
2018-06-14 00:00:00
ubuntu
ubuntu
ImageMagick vulnerabilities
2018-06-12 00:00:00
mageia
mageia
Updated imagemagick packages fix security vulnerabilities
2018-05-12 09:28:12
suse
suse
Security update for ImageMagick (important)
2017-12-20 18:09:33
Security update for ImageMagick (important)
2017-12-22 21:12:06
Security update for ImageMagick (important)
2017-12-20 18:36:37
fedora
fedora
[SECURITY] Fedora 26 Update: emacs-25.3-3.fc26
2017-09-19 03:27:23
[SECURITY] Fedora 26 Update: dmtx-utils-0.7.4-4.fc26
2017-09-19 03:27:20
[SECURITY] Fedora 26 Update: kxstitch-1.2.0-9.fc26
2017-09-19 03:27:28
gentoo
gentoo
ImageMagick: Multiple vulnerabilities
2017-11-11 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

JSON
Related for DEBIAN:DSA-4204-1:1D5FF
nessus27debian6openvas47osv14redhatcve8prion8ubuntucve8cve8veracode7debiancve8cloudfoundry1ubuntu1mageia1suse3fedora25gentoo1